By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
Viral Trending contentViral Trending content
  • Home
  • World News
  • Politics
  • Sports
  • Celebrity
  • Business
  • Crypto
  • Gaming News
  • Tech News
  • Travel
Reading: CISA warns of actively exploited Dassault RCE vulnerability
Notification Show More
Viral Trending contentViral Trending content
  • Home
  • Categories
    • World News
    • Politics
    • Sports
    • Celebrity
    • Business
    • Crypto
    • Tech News
    • Gaming News
    • Travel
  • Bookmarks
© 2024 All Rights reserved | Powered by Viraltrendingcontent
Viral Trending content > Blog > Tech News > CISA warns of actively exploited Dassault RCE vulnerability
Tech News

CISA warns of actively exploited Dassault RCE vulnerability

By admin 3 Min Read
Share
SHARE

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of hackers exploiting a critical remote code execution flaw in DELMIA Apriso, a  manufacturing operations management (MOM) and execution (MES) solution from French company Dassault Systèmes.

The agency added the vulnerability, tracked as CVE-2025-5086 and rated with a critical severity score (CVSS v3: 9.0), to the Known Exploited Vulnerabilities (KEV).

DELMIA Apriso is used in production processes for digitalizing and monitoring. Enterprises worlwide rely on it to schedule production, for quality management, allocate resources, warehouse management, and for integration between production equipment and business applications.

It is typically deployed in automotive, aerospace, electronics, high-tech, and industrial machinery divisions, where high quality control, traceability, compliance, and a high level of process standardization are critical.

The flaw is a deserialization of untrusted data vulnerability that may lead to remote code execution (RCE).

The vendor disclosed the issue on June 2, noting that it impacts all versions of DELMIA Apriso from Release 2020 through Release 2025, without sharing many details.

On September 3, threat researcher Johannes Ullrich published a post on SANS ISC disclosing observation of active exploitation attempts leveraging CVE-2025-5086.

The observed exploit involves sending a malicious SOAP request to vulnerable endpoints that loads and executes a Base64-encoded, GZIP-compressed .NET executable embedded in the XML.

The actual payload is a Windows executable tagged as malicious by Hybrid Analysis and flagged only by one engine in VirusTotal.

The malicious requests were observed originating from the IP 156.244.33[.]162, likely associated with automated scans.

CISA has not linked to the Ullrich report, so it is unclear if this is the report that prompted them to add CVE-2025-5086 to KEV, or if they had a separate source confirming exploitation.

The U.S. government agency is now giving the federal enterprise sector until October 2 to apply available security updates or mitigations, or stop using DELMIA Apriso.

Although the BOD 22-01 guidance is binding only for federal agencies, private organizations around the world should also consider CISA’s warning and take appropriate action.

Picus Blue Report 2025

46% of environments had passwords cracked, nearly doubling from 25% last year.

Get the Picus Blue Report 2025 now for a comprehensive look at more findings on prevention, detection, and data exfiltration trends.

You Might Also Like

Our Favorite All-in-One Printer and Scanner Is $50 Off

Four Dublin start-ups awarded at 2025 New Frontiers showcase

Confucius Hackers Hit Pakistan With New WooperStealer and Anondoor Malware

Gemini AI Coming to Older Google Nest Speakers, Cameras, and Doorbells

How AI Agents Are Transforming Coding with Autonomy & Efficiency

TAGGED: Actively Exploited, Deserialization, RCE, Remote Code Execution, Vulnerability
Share This Article
Facebook Twitter Copy Link
Previous Article Calafiori dreamin’ …
Next Article Mercedes EQS Covers 1,205 km on a Single Charge
Leave a comment

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

- Advertisement -
Ad image

Latest News

Dragon Ball: Sparking! ZERO Celebrates Over 200 Characters, Teases News of More in 2026
Gaming News
Developer sues Westminster, blames Xcel delays for stalled apartment project
Business
Our Favorite All-in-One Printer and Scanner Is $50 Off
Tech News
Ange Postecoglou responds to brutal 'sacked in the morning' chants after Nottingham Forest defeat
Sports
Four Dublin start-ups awarded at 2025 New Frontiers showcase
Tech News
Confucius Hackers Hit Pakistan With New WooperStealer and Anondoor Malware
Tech News
Analyst Shares ‘Realistic’ XRP Price Prediction For 2025 – It’s In The Double-Digits
Crypto

About Us

Welcome to Viraltrendingcontent, your go-to source for the latest updates on world news, politics, sports, celebrity, tech, travel, gaming, crypto news, and business news. We are dedicated to providing you with accurate, timely, and engaging content from around the globe.

Quick Links

  • Home
  • World News
  • Politics
  • Celebrity
  • Business
  • Home
  • World News
  • Politics
  • Sports
  • Celebrity
  • Business
  • Crypto
  • Gaming News
  • Tech News
  • Travel
  • Sports
  • Crypto
  • Tech News
  • Gaming News
  • Travel

Trending News

cageside seats

Unlocking the Ultimate WWE Experience: Cageside Seats News 2024

Dragon Ball: Sparking! ZERO Celebrates Over 200 Characters, Teases News of More in 2026

Investing £5 a day could help me build a second income of £329 a month!

cageside seats
Unlocking the Ultimate WWE Experience: Cageside Seats News 2024
May 22, 2024
Dragon Ball: Sparking! ZERO Celebrates Over 200 Characters, Teases News of More in 2026
October 3, 2025
Investing £5 a day could help me build a second income of £329 a month!
March 27, 2024
Brussels unveils plans for a European Degree but struggles to explain why
March 27, 2024
© 2024 All Rights reserved | Powered by Vraltrendingcontent
  • About Us
  • Contact US
  • Disclaimer
  • Privacy Policy
  • Terms of Service
Welcome Back!

Sign in to your account

Lost your password?